Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/hBzwaCXYkKUiOdStYbmufVCzfm0.roa
File: hBzwaCXYkKUiOdStYbmufVCzfm0.roa (raw, json)
Hash identifier: cvALMQFolncwN7qzF7TcmrZ8nXE9dgcGrAhuM4/PsUw=
Subject key identifier: 84:1C:F0:68:25:D8:90:A5:22:39:D4:AD:61:B9:AE:7D:50:B3:7E:6D
Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482
Certificate serial: 0AF3
Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/hBzwaCXYkKUiOdStYbmufVCzfm0.roa
Signing time: Wed 29 Sep 2021 02:55:57 +0000
ROA not before: Wed 29 Sep 2021 02:55:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 103.138.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2803 (0xaf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482
Validity
Not Before: Sep 29 02:55:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=841CF06825D890A52239D4AD61B9AE7D50B37E6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1e:b5:89:e9:c6:81:04:31:19:45:c0:6e:29:
1d:86:87:4c:aa:64:84:1d:e8:11:43:fc:2e:b4:53:
10:e0:18:96:5d:4f:20:03:9b:61:f8:9e:af:76:35:
83:93:05:a7:d4:27:a2:4a:46:46:c7:f0:18:1d:67:
e1:14:a6:85:40:76:e1:94:b8:3c:66:49:f8:9b:c1:
12:c0:b1:88:5a:b9:0e:81:3c:c9:0d:86:34:16:20:
b8:91:d4:89:e9:3b:7c:4e:ea:1f:f2:42:34:ec:bd:
35:5f:1f:14:c7:53:d2:73:83:9f:9b:b0:e4:16:85:
8b:72:96:3f:7c:41:07:6b:e7:2a:75:be:81:4c:22:
4e:e8:7e:c5:ea:09:d9:66:0f:18:8a:6c:20:6f:3d:
ff:cc:90:27:3f:50:88:98:6f:04:d1:11:fb:81:c6:
1c:20:c6:b8:62:f2:73:52:9b:75:90:c4:c6:92:4d:
7f:38:be:84:02:14:27:19:1f:60:98:0d:4f:10:76:
09:4d:33:3e:2c:fc:b8:98:c4:4e:b1:c3:88:36:eb:
60:4f:78:8b:40:d4:36:9a:f1:b1:7e:16:4b:d9:b0:
30:ed:00:82:a4:fd:b0:de:7a:15:53:1d:c7:47:22:
a1:e4:b5:7b:4a:ae:18:f7:96:7e:1f:24:9a:a7:4b:
3e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1C:F0:68:25:D8:90:A5:22:39:D4:AD:61:B9:AE:7D:50:B3:7E:6D
X509v3 Authority Key Identifier:
keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/hBzwaCXYkKUiOdStYbmufVCzfm0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.194.0/23
Signature Algorithm: sha256WithRSAEncryption
29:a3:51:98:2b:84:09:04:48:b0:5a:10:b4:b2:88:9b:93:32:
6e:1c:3d:cc:f1:9c:d8:59:23:e0:10:ed:b0:be:10:63:59:82:
c4:db:20:e6:c5:b5:b3:31:2f:e5:36:79:cc:b3:54:75:e6:90:
e6:32:56:5e:01:56:99:a2:53:7f:27:5b:bd:86:b3:b7:cb:8f:
87:e7:68:24:e6:85:e9:99:a0:f6:3d:ea:d5:90:bc:77:cc:b3:
f2:03:d5:68:b0:6f:41:a6:75:22:b5:f3:4f:17:d6:fd:92:c5:
76:b8:7c:43:7f:e4:81:d8:5b:cc:02:95:96:cf:d3:0c:51:6c:
0c:d3:0b:e8:3b:08:43:a8:35:59:66:f7:6a:40:9e:b6:53:b3:
f7:bf:8c:ca:89:6a:09:5c:5f:c6:72:d9:14:62:eb:02:0d:17:
18:c6:f3:a9:0a:2e:f5:be:a8:f3:14:f1:dc:ca:2d:99:b3:16:
ee:be:5a:73:01:56:f8:e8:51:13:5a:89:7d:ef:23:85:d9:fc:
01:34:e1:e9:39:bd:35:f7:d1:7a:22:41:f7:97:ab:dd:3d:4f:
56:ea:b7:2b:05:46:83:6d:3e:25:96:30:86:c3:c5:2e:9d:9e:
af:c2:9b:9d:b7:4c:6e:4a:0d:9e:fb:04:af:40:75:2a:bc:59:
af:17:f0:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org